<?
/*
* Author - Tw1nGo
* VK - https://vk.com/tw1ngo93
*/
if (isset($_GET['id'])){
$group = mysql_fetch_assoc(mysql_query("SELECT * FROM `groups` WHERE `id` = '".abs(intval($_GET['id']))."' LIMIT 1"));
}
if (!isset($_GET['id']) || !isset($group) || $group['id'] <= 0 || !isset($user) || mysql_result(mysql_query("SELECT COUNT(*) FROM `groups_users` WHERE `id_group` = '".$group['id']."' AND `id_user` = '".$user['id']."' AND `st` = '0'"), 0) == 0)
{
header("Location: /groups");
exit;
}
$set['title'] = 'Редактирование вложений';
include_once H.'sys/inc/thead.php';
// Конфигурационный файл
require 'config.php';
shapka_VK(true, '?', 'Новая запись');
$q = mysql_query("SELECT * FROM `groups_files` WHERE `id_user` = '".$user['id']."' AND `id_post` = '0' LIMIT " . $config['max_uploads_file']);
$countFile = mysql_num_rows($q);
if (isset($_POST['cfms']))
{
// Число загружаемых файлов = 5, если изменить в крнфиге, то придется чуть переделать файл
if ($countFile >= $config['max_uploads_file']){
$_SESSION['message'] = 'Вы загрузили максимальное количество файлов на одно сообщение';
header ("Location: ?act=attachments");
exit;
}
if ((isset($_FILES['file_1']) && isset($_FILES['file_1']['tmp_name'])) || (isset($_FILES['file_2']) && isset($_FILES['file_2']['tmp_name'])) || (isset($_FILES['file_3']) && isset($_FILES['file_3']['tmp_name'])))
{
if (isset($_FILES['file_1']) && isset($_FILES['file_1']['tmp_name']))
{
$file = esc(stripcslashes(htmlspecialchars($_FILES['file_1']['name'])));
$file = preg_replace('(\#|\?)', NULL, $file);
$name = preg_replace('#\.[^\.]*$#', NULL, $file);
if (!isset($name) || $name == NULL)
{
$name = 'File';
}
$ras = strtolower(preg_replace('#^.*\.#', NULL, $file));
$type = $_FILES['file_1']['type'];
if (($ras == 'png' || $ras == 'jpg' || $ras == 'jpeg' || $ras == 'gif') && $imgc = @imagecreatefromstring(file_get_contents($_FILES['file_1']['tmp_name'])))
{
mysql_query("INSERT INTO `groups_files` (`id_user`, `name`, `type`, `ras`, `time`) values ('".$user['id']."', '".my_esc($name)."', '1', 'jpg', '".$time."')");
$id_f = mysql_insert_id();
$img_x = imagesx($imgc);
$img_y = imagesy($imgc);
if ($img_x > 500 || $img_y > 500)
{
if ($img_x == $img_y)
{
$dstW = 500;
$dstH = 500;
}
else if ($img_x > $img_y)
{
$prop = $img_x/$img_y;
$dstW = 500;
$dstH = ceil($dstW/$prop);
} else {
$prop = $img_y/$img_x;
$dstH = 500;
$dstW = ceil($dstH/$prop);
}
} else {
$dstW = $img_x;
$dstH = $img_y;
}
$screen = imagecreatetruecolor($dstW, $dstH);
imagecopyresampled($screen, $imgc, 0, 0, 0, 0, $dstW, $dstH, $img_x, $img_y);
imagedestroy($imgc);
imagejpeg($screen, H.'files/groups/files/others/'.$id_f.'.jpg');
imagedestroy($screen);
chmod(H.'files/groups/files/others/'.$id_f.'.jpg', 0777);
}
else if ($ras == 'mp4' || $ras == 'avi' || $ras == 'flv')
{
mysql_query("INSERT INTO `groups_files` (`id_user`, `name`, `type`, `ras`, `time`) values ('".$user['id']."', '".my_esc($name)."', '2', '".$ras."', '".$time."')");
$id_f = mysql_insert_id();
if (!@copy($_FILES['file_1']['tmp_name'], H.'files/groups/files/others/'.$id_f.'.'.$ras.''))
{
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
if (class_exists('ffmpeg_movie'))
{
if ($media = new ffmpeg_movie(H.'files/groups/files/others/'.$id_f.'.'.$ras))
{
$k_frame = intval($media->getFrameCount());
$w = $media->GetFrameWidth();
$h = $media->GetFrameHeight();
$ff_frame = $media->getFrame(intval($k_frame/2));
if (!$ff_frame)
{
$ff_frame = $media->getFrame('2');
}
if ($ff_frame)
{
$gd_image = $ff_frame->toGDImage();
if ($gd_image)
{
$des_img = imagecreatetruecolor($w, $h);
$s_img = $gd_image;
imagecopyresampled($des_img, $s_img, 0, 0, 0, 0, $w, $h, $w, $h);
imagegif($des_img,H."files/groups/files/video/".$id_f.".gif");
chmod(H."files/groups/files/video/".$id_f.".gif", 0777);
imagedestroy($des_img);
imagedestroy($s_img);
}
}
}
}
if (!is_file(H."files/groups/files/video/".$id_f.".gif"))
{
unlink(H.'files/groups/files/others/'.$id_f.'.'.$ras);
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
}
else if ($ras == 'mp3' || $ras == 'ogg')
{
mysql_query("INSERT INTO `groups_files` (`id_user`, `name`, `type`, `ras`, `time`) values ('".$user['id']."', '".my_esc($name)."', '3', '".$ras."', '".$time."')");
$id_f = mysql_insert_id();
if (!@copy($_FILES['file_1']['tmp_name'], H.'files/groups/files/others/'.$id_f.'.'.$ras.''))
{
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
if (class_exists('ffmpeg_movie'))
{
if ($media = new ffmpeg_movie(H.'files/groups/files/others/'.$id_f.'.'.$ras))
{
// Ждите обновление ;)
} else {
unlink(H.'files/groups/files/others/'.$id_f.'.'.$ras);
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
} else {
unlink(H.'files/groups/files/others/'.$id_f.'.'.$ras);
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
} else {
mysql_query("INSERT INTO `groups_files` (`id_user`, `name`, `type`, `ras`, `time`) values ('".$user['id']."', '".my_esc($name)."', '4', '".$ras."', '".$time."')");
$id_f = mysql_insert_id();
if (!@copy($_FILES['file_1']['tmp_name'], H.'files/groups/files/dat_files/'.$id_f.'.dat'))
{
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
}
}
if (isset($_FILES['file_2']) && isset($_FILES['file_2']['tmp_name']))
{
$file = esc(stripcslashes(htmlspecialchars($_FILES['file_2']['name'])));
$file = preg_replace('(\#|\?)', NULL, $file);
$name = preg_replace('#\.[^\.]*$#', NULL, $file);
if (!isset($name) || $name == NULL)
{
$name = 'File';
}
$ras = strtolower(preg_replace('#^.*\.#', NULL, $file));
$type = $_FILES['file_2']['type'];
if (($ras == 'png' || $ras == 'jpg' || $ras == 'jpeg' || $ras == 'gif') && $imgc = @imagecreatefromstring(file_get_contents($_FILES['file_2']['tmp_name'])))
{
mysql_query("INSERT INTO `groups_files` (`id_user`, `name`, `type`, `ras`, `time`) values ('".$user['id']."', '".my_esc($name)."', '1', 'jpg', '".$time."')");
$id_f = mysql_insert_id();
$img_x = imagesx($imgc);
$img_y = imagesy($imgc);
if ($img_x > 500 || $img_y > 500)
{
if ($img_x == $img_y)
{
$dstW = 500;
$dstH = 500;
}
else if ($img_x > $img_y)
{
$prop = $img_x/$img_y;
$dstW = 500;
$dstH = ceil($dstW/$prop);
} else {
$prop = $img_y/$img_x;
$dstH = 500;
$dstW = ceil($dstH/$prop);
}
} else {
$dstW = $img_x;
$dstH = $img_y;
}
$screen = imagecreatetruecolor($dstW, $dstH);
imagecopyresampled($screen, $imgc, 0, 0, 0, 0, $dstW, $dstH, $img_x, $img_y);
imagedestroy($imgc);
imagejpeg($screen, H.'files/groups/files/others/'.$id_f.'.jpg');
imagedestroy($screen);
chmod(H.'files/groups/files/others/'.$id_f.'.jpg', 0777);
}
else if ($ras == 'mp4' || $ras == 'avi' || $ras == 'flv')
{
mysql_query("INSERT INTO `groups_files` (`id_user`, `name`, `type`, `ras`, `time`) values ('".$user['id']."', '".my_esc($name)."', '2', '".$ras."', '".$time."')");
$id_f = mysql_insert_id();
if (!@copy($_FILES['file_2']['tmp_name'], H.'files/groups/files/others/'.$id_f.'.'.$ras.''))
{
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
if (class_exists('ffmpeg_movie'))
{
if ($media = new ffmpeg_movie(H.'files/groups/files/others/'.$id_f.'.'.$ras))
{
$k_frame = intval($media->getFrameCount());
$w = $media->GetFrameWidth();
$h = $media->GetFrameHeight();
$ff_frame = $media->getFrame(intval($k_frame/2));
if (!$ff_frame)
{
$ff_frame = $media->getFrame('2');
}
if ($ff_frame)
{
$gd_image = $ff_frame->toGDImage();
if ($gd_image)
{
$des_img = imagecreatetruecolor($w, $h);
$s_img = $gd_image;
imagecopyresampled($des_img, $s_img, 0, 0, 0, 0, $w, $h, $w, $h);
imagegif($des_img,H."files/groups/files/video/".$id_f.".gif");
chmod(H."files/groups/files/video/".$id_f.".gif", 0777);
imagedestroy($des_img);
imagedestroy($s_img);
}
}
}
}
if (!is_file(H."files/groups/files/video/".$id_f.".gif"))
{
unlink(H.'files/groups/files/others/'.$id_f.'.'.$ras);
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
}
else if ($ras == 'mp3' || $ras == 'ogg')
{
mysql_query("INSERT INTO `groups_files` (`id_user`, `name`, `type`, `ras`, `time`) values ('".$user['id']."', '".my_esc($name)."', '3', '".$ras."', '".$time."')");
$id_f = mysql_insert_id();
if (!@copy($_FILES['file_2']['tmp_name'], H.'files/groups/files/others/'.$id_f.'.'.$ras.''))
{
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
if (class_exists('ffmpeg_movie'))
{
if ($media = new ffmpeg_movie(H.'files/groups/files/others/'.$id_f.'.'.$ras))
{
// Ждите обновление ;)
} else {
unlink(H.'files/groups/files/others/'.$id_f.'.'.$ras);
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
} else {
unlink(H.'files/groups/files/others/'.$id_f.'.'.$ras);
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
} else {
mysql_query("INSERT INTO `groups_files` (`id_user`, `name`, `type`, `ras`, `time`) values ('".$user['id']."', '".my_esc($name)."', '4', '".$ras."', '".$time."')");
$id_f = mysql_insert_id();
if (!@copy($_FILES['file_2']['tmp_name'], H.'files/groups/files/dat_files/'.$id_f.'.dat'))
{
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
}
}
if (isset($_FILES['file_3']) && isset($_FILES['file_1']['tmp_name']))
{
$file = esc(stripcslashes(htmlspecialchars($_FILES['file_3']['name'])));
$file = preg_replace('(\#|\?)', NULL, $file);
$name = preg_replace('#\.[^\.]*$#', NULL, $file);
if (!isset($name) || $name == NULL)
{
$name = 'File';
}
$ras = strtolower(preg_replace('#^.*\.#', NULL, $file));
$type = $_FILES['file_3']['type'];
if (($ras == 'png' || $ras == 'jpg' || $ras == 'jpeg' || $ras == 'gif') && $imgc = @imagecreatefromstring(file_get_contents($_FILES['file_3']['tmp_name'])))
{
mysql_query("INSERT INTO `groups_files` (`id_user`, `name`, `type`, `ras`, `time`) values ('".$user['id']."', '".my_esc($name)."', '1', 'jpg', '".$time."')");
$id_f = mysql_insert_id();
$img_x = imagesx($imgc);
$img_y = imagesy($imgc);
if ($img_x > 500 || $img_y > 500)
{
if ($img_x == $img_y)
{
$dstW = 500;
$dstH = 500;
}
else if ($img_x > $img_y)
{
$prop = $img_x/$img_y;
$dstW = 500;
$dstH = ceil($dstW/$prop);
} else {
$prop = $img_y/$img_x;
$dstH = 500;
$dstW = ceil($dstH/$prop);
}
} else {
$dstW = $img_x;
$dstH = $img_y;
}
$screen = imagecreatetruecolor($dstW, $dstH);
imagecopyresampled($screen, $imgc, 0, 0, 0, 0, $dstW, $dstH, $img_x, $img_y);
imagedestroy($imgc);
imagejpeg($screen, H.'files/groups/files/others/'.$id_f.'.jpg');
imagedestroy($screen);
chmod(H.'files/groups/files/others/'.$id_f.'.jpg', 0777);
}
else if ($ras == 'mp4' || $ras == 'avi' || $ras == 'flv')
{
mysql_query("INSERT INTO `groups_files` (`id_user`, `name`, `type`, `ras`, `time`) values ('".$user['id']."', '".my_esc($name)."', '2', '".$ras."', '".$time."')");
$id_f = mysql_insert_id();
if (!@copy($_FILES['file_3']['tmp_name'], H.'files/groups/files/others/'.$id_f.'.'.$ras.''))
{
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
if (class_exists('ffmpeg_movie'))
{
if ($media = new ffmpeg_movie(H.'files/groups/files/others/'.$id_f.'.'.$ras))
{
$k_frame = intval($media->getFrameCount());
$w = $media->GetFrameWidth();
$h = $media->GetFrameHeight();
$ff_frame = $media->getFrame(intval($k_frame/2));
if (!$ff_frame)
{
$ff_frame = $media->getFrame('2');
}
if ($ff_frame)
{
$gd_image = $ff_frame->toGDImage();
if ($gd_image)
{
$des_img = imagecreatetruecolor($w, $h);
$s_img = $gd_image;
imagecopyresampled($des_img, $s_img, 0, 0, 0, 0, $w, $h, $w, $h);
imagegif($des_img,H."files/groups/files/video/".$id_f.".gif");
chmod(H."files/groups/files/video/".$id_f.".gif", 0777);
imagedestroy($des_img);
imagedestroy($s_img);
}
}
}
}
if (!is_file(H."files/groups/files/video/".$id_f.".gif"))
{
unlink(H.'files/groups/files/others/'.$id_f.'.'.$ras);
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
}
else if ($ras == 'mp3' || $ras == 'ogg')
{
mysql_query("INSERT INTO `groups_files` (`id_user`, `name`, `type`, `ras`, `time`) values ('".$user['id']."', '".my_esc($name)."', '3', '".$ras."', '".$time."')");
$id_f = mysql_insert_id();
if (!@copy($_FILES['file_3']['tmp_name'], H.'files/groups/files/others/'.$id_f.'.'.$ras.''))
{
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
if (class_exists('ffmpeg_movie'))
{
if ($media = new ffmpeg_movie(H.'files/groups/files/others/'.$id_f.'.'.$ras))
{
// Ждите обновление ;)
} else {
unlink(H.'files/groups/files/others/'.$id_f.'.'.$ras);
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
} else {
unlink(H.'files/groups/files/others/'.$id_f.'.'.$ras);
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
} else {
mysql_query("INSERT INTO `groups_files` (`id_user`, `name`, `type`, `ras`, `time`) values ('".$user['id']."', '".my_esc($name)."', '4', '".$ras."', '".$time."')");
$id_f = mysql_insert_id();
if (!@copy($_FILES['file_3']['tmp_name'], H.'files/groups/files/dat_files/'.$id_f.'.dat'))
{
mysql_query("DELETE FROM `groups_files` WHERE `id` = '".$id_f."' LIMIT 1");
}
}
}
header("Location: ?act=group#wall");
exit;
} else {
$err = 'Выберите файлы!';
}
}
?>
<div class="pcont fit_box bl_cont">
<?
err();
uvedom();
?>
<h4 class="slim_header">Выберите файлы</h4>
<div class="form_item upload_form">
<form action="?act=attachments" method="post" enctype="multipart/form-data">
<?
if ($countFile < 3 && $countFile < $config['max_uploads_file']) {
?>
<div class="upload_row"><input class="upload_input" name="file_1" type="file"></div>
<div class="upload_row"><input class="upload_input" name="file_2" type="file"></div>
<div class="upload_row"><input class="upload_input" name="file_3" type="file"></div>
<?
}
elseif ($countFile == 3 && $countFile < $config['max_uploads_file']) {
?>
<div class="upload_row"><input class="upload_input" name="file_1" type="file"></div>
<div class="upload_row"><input class="upload_input" name="file_2" type="file"></div>
<?
}
elseif ($countFile >= 4 && $countFile <= $config['max_uploads_file']) {
?>
<div class="upload_row"><input class="upload_input" name="file_1" type="file"></div>
<?
}
?>
<div class="upload_row">
<input class="button" value="Загрузить" name="cfms" type="submit"><a class="near_btn" href="/group<?= $group['id']?>#wall">Назад</a>
</div>
</form>
</div>
</div>
<?
if ($countFile) {
?>
<div class="pcont bl_cont">
<h4 class="slim_header" style="border-top: 1px solid #dfe3e8;margin-top: 10px;">Прикрепленные объекты</h4>
<div class="attached_block">
<div class="cp_attached_wrap" id="attach_wrap_gr">
<div class="pi_medias">
<?
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `groups_files` WHERE `id_user` = '".$user['id']."' AND `id_post` = '0' AND (`type` = '1' OR `type` = '2')"), 0) > 0)
{
$q_f = mysql_query("SELECT * FROM `groups_files` WHERE `id_user` = '".$user['id']."' AND `id_post` = '0' AND (`type` = '1' OR `type` = '2') ORDER BY `time` DESC");
while ($post_f = mysql_fetch_array($q_f))
{
?>
<div class="medias_thumb thumb_item mr_x_wrap thumb_upload">
<img class="ph_img" src="<?= Tw1nGo::File_Img($post_f['id'])?>" style="max-width: 100px; opacity: 1;">
<div id="item_progress_wrap_sth92xtxni" class="tu_progress_wrap tu_progress_request" style="opacity: 0;">
<div class="tu_progress" style="width: 100%; visibility: visible;"></div>
</div>
<div id="item_cancel_wrap_sth92xtxni" class="tu_cancel_wrap" onclick="dell_fi_gr(<?= $post_f['id']?>);">
<div id="item_cancel_sth92xtxni" class="tu_cancel"></div>
</div>
</div>
<?
}
}
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `groups_files` WHERE `id_user` = '".$user['id']."' AND `id_post` = '0' AND `type` = '3'"), 0) > 0)
{
$q_fy = mysql_query("SELECT * FROM `groups_files` WHERE `id_user` = '".$user['id']."' AND `id_post` = '0' AND `type` = '3' ORDER BY `time` DESC");
while ($post_f = mysql_fetch_array($q_fy))
{
?>
<div class="medias_row mr_x_wrap">
<span class="mr_label medias_link medias_audio">
<span class="medias_link_icon"><i class="i_icon i_audio"></i></span>
<span class="medias_audio_artist"><?= text($post_f['name'])?></span>
<div class="tu_cancel_wrap" onclick="dell_fi_gr(<?= $post_f['id']?>);"><i class="tu_cancel"></i></div>
</div>
<?
}
}
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `groups_files` WHERE `id_user` = '".$user['id']."' AND `id_post` = '0' AND `type` = '4'"), 0) > 0)
{
$q_f = mysql_query("SELECT * FROM `groups_files` WHERE `id_user` = '".$user['id']."' AND `id_post` = '0' AND `type` = '4' ORDER BY `time` DESC");
while ($post_f = mysql_fetch_array($q_f))
{
?>
<div class="medias_row mr_x_wrap">
<span class="mr_label medias_link">
<span class="medias_link_icon"><i class="i_icon i_doc"></i></span>
<span class="medias_link_texts">
<span class="medias_link_label">Файл</span><span class="medias_link_labeled medias_link_title"> <?= text($post_f['name'])?>.<?= text($post_f['ras'])?></span>
<span class="medias_link_desc"> Файл</span>
</span>
</span>
<div class="tu_cancel_wrap" onclick="dell_fi_gr(<?= $post_f['id']?>);"><i class="tu_cancel"></i></div>
</div>
<?
}
}
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `groups_files` WHERE `id_user` = '".$user['id']."' AND `id_post` = '0'"), 0) == 0)
{
?>
<span> Прикрепленных обьектов нет!</span>
<?
}
?>
</div>
</div>
</div></div>
<?
}
?>